Summary: We collect only what's necessary to provide our service. Your data is stored securely in the EU, never sold to third parties, and you can delete it anytime.
1. Introduction
MindFlo ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our brain training service.
We are based in the European Union and comply fully with the General Data Protection Regulation (GDPR).
2. Information We Collect
Information You Provide
- Account Information: Name, email address, and password when you create an account
- Profile Information: Age range and preferences to personalize your training
- Payment Information: Processed securely through Stripe; we do not store credit card numbers
Information Collected Automatically
- Usage Data: Exercise performance, session duration, and progress metrics
- Device Information: Browser type, operating system, and device type
- Log Data: IP address, access times, and pages viewed
3. How We Use Your Information
We use your information to:
- Provide and personalize our brain training service
- Track your progress and generate cognitive reports
- Process payments and manage your subscription
- Send important service updates and, with your consent, promotional emails
- Improve our exercises and develop new features
- Ensure security and prevent fraud
4. Data Storage and Security
All personal data is stored on secure servers located within the European Union. We implement industry-standard security measures including:
- Encryption of data in transit (TLS/SSL) and at rest
- Regular security audits and vulnerability assessments
- Strict access controls and employee training
- Automated backups and disaster recovery procedures
5. Data Sharing
We do not sell your personal information. We may share data only with:
- Service Providers: Trusted partners who assist in operating our service (e.g., Stripe for payments, hosting providers)
- Legal Requirements: When required by law or to protect our rights
- Aggregated Data: Anonymous, aggregated statistics for research purposes
6. Your Rights (GDPR)
Under GDPR, you have the right to:
- Access: Request a copy of your personal data
- Rectification: Correct inaccurate or incomplete data
- Erasure: Request deletion of your data ("right to be forgotten")
- Portability: Receive your data in a machine-readable format
- Objection: Object to certain processing of your data
- Restriction: Request limited processing of your data
To exercise these rights, contact us at privacy@mindflo.eu
7. Cookies
We use essential cookies to enable core functionality. We also use analytics cookies (with your consent) to understand how you use our service. You can manage cookie preferences in your browser settings.
8. Children's Privacy
MindFlo is designed for adults 50 and older. We do not knowingly collect information from anyone under 18 years of age.
9. Changes to This Policy
We may update this Privacy Policy periodically. We will notify you of significant changes via email or through our service.
10. Contact Us
If you have questions about this Privacy Policy or our data practices, please contact us:
- Email: privacy@mindflo.eu
- Address: MindFlo B.V., Amsterdam, Netherlands